Gleipnir/nixos-systems
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
nixos-systems/secrets/matrix-synapse.yaml
Eli Ribble cbb8daebf9 Working nixos-anywhere directly to nocix-amd-legacy-sexcore 
This was essentiall an OS wipe, adding root authorized keys, then
running nix-anywhere out of the main flake. Saves a bunch of steps which
is really nice.

I removed the data disk from the disko config in the hopes it would
solve a problem that looked like:

  ### Installing NixOS ###
  Pseudo-terminal will not be allocated because stdin is not a terminal.
  Warning: Permanently added 'nocix-amd-legacy-sexcore.gleipnir.technology' (ED25519) to the list of known hosts.
  installing the boot loader...
  mkdir: cannot create directory ‘/mnt/sys’: Structure needs cleaning
2026-01-05 01:29:00 +00:00

103 lines
7.7 KiB
YAML
Raw Blame History

database:
name: ENC[AES256_GCM,data:NsAEq1So/5Y=,iv:CJPvLldlEMSaBz3Jo5HGMSeE9O1gEDLb5xJ36hV5kXQ=,tag:xkFP1BxQ3IQrFK/TW+k2+w==,type:str]
args:
host: ENC[AES256_GCM,data:/FizVZdC/LKLYTdjOSxhJXAzkQ==,iv:u2VoaR90gxF6qGKkXd901Axs4QuGTwdOuRlocaCRw1o=,tag:oVNfvPlbTksLr3ukavceQA==,type:str]
dbname: ENC[AES256_GCM,data:IO2h0T5OTfK55Pm8/28=,iv:Ay+Se0zMJQS+1KABj4Ym0dS553PI/iHJ52CcrEeQ2k4=,tag:N6d8so+WYfO/em30Y+xCwQ==,type:str]
user: ENC[AES256_GCM,data:rJuzJ8sOALNdDIqSIKA=,iv:ig/0bPe7c4gAMloXHlq3ujE9DDvPx1D9YYAWPIXQywg=,tag:QzNPn1HCPTi2gx68V4mNlg==,type:str]
jwt_config:
enabled: ENC[AES256_GCM,data:L+aYig==,iv:RRUMcl47r3gB1CNQ0/i05nU2kb5e1lMRamDZSGy6N90=,tag:9vDGVddpKjorKeT3O8cdNw==,type:bool]
secret: ENC[AES256_GCM,data:QLXVCF9H6rgSSq64B72gFTl8wBRrD/hm2b/yAwxEcxAAikUe,iv:i3Nz8JhigC+bt6kaLV+oeeA+Ra/o5UoESrNW6UyqhUY=,tag:AbSGmiA17mfwyDq3OARL2w==,type:str]
algorithm: ENC[AES256_GCM,data:eeuRMMo=,iv:jKfD4HrQ8lG/SthHPFavYNbhwTpI63buaGE4kGb+A20=,tag:qpKrR47av1imWUkVaCQVIw==,type:str]
oidc_providers:
- idp_id: ENC[AES256_GCM,data:e8Au6G7U5dhq,iv:JFaQwW9cvh9qVggD7cJqrEdeD5Avnc0DwfrF3iL/M+k=,tag:BEtT7BaxLldaw8+AGSwOLQ==,type:str]
idp_name: ENC[AES256_GCM,data:msJV6pZyFxXV,iv:50+99U19nvigJoQKuW3PActMItggMIPbjneMGPBS0d8=,tag:Up0NEdVtksTaFmF+skxG0w==,type:str]
discover: ENC[AES256_GCM,data:l0Ex/A==,iv:j0Qf5d51VrPzkxJ+DKIjouvXs9RN1sJPDSPvcZmz/Tw=,tag:2cSQa9Ih1rX4YApTfWno7A==,type:bool]
issuer: ENC[AES256_GCM,data:lU/3UGFK7AmQ153x4JvQ7cMrXeZ73yMaZcXoeJHcyJsXE0R9juIJ+kHxyGnSwD/2FOxrWQS/,iv:/mWxncCfICgTKKL6Qm7O8hNtMXgnyr3MyynOR8ChUZs=,tag:pbYZwQmSFwUKsD8CeNXzlg==,type:str]
client_id: ENC[AES256_GCM,data:w4ENPyd7fxAaljpon0o69zbtjMB0gCEZ77S+e6a0mUtKRq4qUBKZuw==,iv:kDTk0eMs4x9dOE9QqIqwllyJB17nRnXn+w/+pXGH4q0=,tag:0B6YYBIvTYISCIwUYZmrsg==,type:str]
client_secret: ENC[AES256_GCM,data:MXsivbUBNhVsgdRPbDN+LXzYaJ4dV7Rl0j6Q6DRxHqVLjt+7NZz2NjLsSdn4e0I4bVGpW2CLfEHdi6KEAQfJh+TiObU4bI0G8q5uDXSVl0WMe0y2FEwAocNuJp6cVCBF7ebb1B3RkbiOXdIb6Eu3nIvBzSjmFJsj3T0g6zCPQh8=,iv:IzrAIs2iAI5eNgIOplTFt4ovmQQadlloiiBVADMbiRM=,tag:n0v8iOgkAdPUyoUwDUOGAg==,type:str]
scopes:
- ENC[AES256_GCM,data:i6CSMfCQ,iv:GrH+yTV+RiojtnG6HRZpNtEvhE/LWGnYAjdL4v5A5+E=,tag:wq99aBeVOVHdwsahCQ2kYA==,type:str]
- ENC[AES256_GCM,data:goyFYEWG7Q==,iv:GxuGl/B7YSDqN2iccxHkyQ+lIIa9ePJKwVPiKlV0WkU=,tag:UFDqB+yNycDbW5kDj14ZGQ==,type:str]
- ENC[AES256_GCM,data:Fp21QIg=,iv:Yd0V+7ywL3eJ7CI3pB1jNchkt1zXg9CV+eRBqFSpnWU=,tag:PqqbumQJVnP4bu34rb4sAg==,type:str]
user_mapping_provider:
config:
localpart_template: ENC[AES256_GCM,data:mp5Zk6VACm0P0VAG2YMWLJBFsy4HKsJroGazLHc=,iv:cI+Lhox9GIqSJE6vi/b6ozZC2WizKzRnmNIz8/85r1E=,tag:FrX+M3IngtToNFIdrMHa0w==,type:str]
display_name_template: ENC[AES256_GCM,data:HCn1I9VwWvrcvLGrYefs+uDePJ0NLGcw1TI=,iv:SwUz7UeZYbVHuvT1yM6rKVskITzVNpKWtqDMsAnxl0Y=,tag:gppH95yWjNafwNHAXLRd/w==,type:str]
sops:
age:
- recipient: age1fnkhk9rv7r8gh84vxnhvndk4fgh20qcj4hvnfhdpumcydl6m6vrse50lrz
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBHQ05haGpvcXh0b1ZZbEl0
OHBuZEdGOVVCRXVZZ3d2OVM0NFlEdUk0RzNrCkpURUlCYmNWS20xRkQzM3U2VFkz
UEV0dGlwNEtWbTROU0FkWDh5YWlZZWMKLS0tIDk5WVludktQQ0d0SGllVEtTVVFI
VmRjcU1qT1ByaitMNVJ5K0lkNjdEVmMKy1emTAqEy52/jErKgIF/gEyABfkE9rr/
9d6Jbkq/ezS7tVfuqtQEvL2sd9LCebdwnspEJe/uCbDMJ6ZrQZJilw==
-----END AGE ENCRYPTED FILE-----
- recipient: age1x704pjnueguchkl54ly8w4w26ltys5900v7xnl7w3zlgasus09jszz45t8
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBzZWN4bVpCc0dCTmg0R3Zp
V1cyQkpEZU1KcG03cFFqb2NpWEMyaHJvV1FBCk9WaVJ1WHd5dExWdDJBK3A0Tm1z
Slo5WXFzWU83L0V2Q0dua3hLK3lhQlkKLS0tIGdvY0MzSzVleWEva1J4SEt5ZzRN
SktMVEVMU0FLYW9rRHpCSzVEdDQrQlUKjhnlT67wF3ucmvZ8S1JhVjQxaHXpBAwV
UX0laX5tfLG52UIbxiYSjLzHN+3l8r3y9ENJ0624M+bPrZswBR0yLw==
-----END AGE ENCRYPTED FILE-----
- recipient: age15y4k929zaj9fdg3vd40pa40tgvrgv9mn22xfummn5zxfmkcw5d0st6prjx
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSB3bXZpWGZDTU9HTGZDYXBT
bDI4cExiOVRLSEpaYlFyZENpRWJqMFJKSTBnCk1JT0lZUGUycEVJajNwbkkrOXZk
VFZHQ09kNmZlYkZGdVBnS3Y0cExab00KLS0tIGxNZGtFZ2FRUGtxajNubzkwM3pB
dUN1SE1obG1HaksxOERKNitqZk5PdWcKEnwGoETv1dd7NS54bugV4teZVjAN022c
cl4bxdko2fSsGX0qIURTduhcM9t8eUaTT97WZrGJWvfPjbJ29yI4Tw==
-----END AGE ENCRYPTED FILE-----
- recipient: age1q5syuyx3n255vllv6elfj72yk5mhxnk9pqawzyy4gzkzmpw3gpjqz9ujx2
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA0U2QwbGFkWXhPUmdvamgx
WEtrRkd3b2tGOG02cXBQdFVmUi9CRXlaa0FvCmdldmYwRm96RFBqNFE0RUQzakVa
MkRkbWluOWZMeHpNanpYZ0x2N0R1cFkKLS0tIFJEU2pDNktaNURocFVEb3VJTzJp
YzdBYXRTVkJsbmluNlZBOWN4dUUrOTQKlZ07fCD0MTaRVzdncOWxL37hJavUiEux
f2spzDfWV8eWsFzvIBGHQuqyxkvgFkv8z6F3678l2/xBkGx+JABwGg==
-----END AGE ENCRYPTED FILE-----
- recipient: age1ck44jqpuz3zlthquvuh7wsemrjrgfzhn462sk7rlfetwxpgy0uqs79xn2h
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBYQ3NZbmd6SldjNmwrZDRv
T2g5c1F4TU9tajhMbVRLTU9CYmhaVjdLUzNBCnloOVhUeXJoaU5EVnovczBGbGJ2
UVozam1wZ2dQWG11MWRMY054N2F2RUEKLS0tIElBOWdCTjRFWmV5VUtjeGlMVzdp
SHlhNzVjK05kWGprZGcxNG1IVUJlWEkKQW59QqhuOJLkUOOvpYN/lVEPoCDPhC3Z
kb8PyuA3K+zUylNxnpcscNCnlAVZSpePePb/34VfuozDJkGp0ER44Q==
-----END AGE ENCRYPTED FILE-----
- recipient: age1yfs6d0vac45rnx3q54u52tjk5vnfsqnghaj95kmkl7fd5du3ee8qgse385
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBZbC9SZXU0TkprRXlHZGlP
MFlsM21INzhYVXBPbDM1ME1iaGQyai9iaEZ3CjJYWG1FUDBnWERxQy96M3dNTjB3
YXhoTk96Y2hFLzFWUmE0Q3hvVUpkRE0KLS0tIEdxVldhNVRwSEJJbGxBZXN2MnZB
cGZraHlQQzZ2WE9KeHpRU0NzdHNNSlkKTnI6yDf2fvZn45u5f/L35fxm/DAVAl07
CsSnIO1R89uK7mZKH2HU4rYNI4+uVWfpgF+UtPDNBiyvXCkIlPQKNg==
-----END AGE ENCRYPTED FILE-----
- recipient: age1t3ryfktuhr3cysf49m9q2n8fkjf9ajjjnhztxw9hz8paxgk4lpcq065jge
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSA1dkkyUFozYzNuc2tVNGNH
ODJsY1c0cGNKSnVnMUpFb2lEQ2J1dFJsQndFCndKUXFnb2JobUdPWCtxWU9CYUUy
VUc2T3RzMmNDblZ2d3FGSDVDVlBoNjgKLS0tIDlCRGlaN3dqRmFjUm5pK1BhRTN2
UHBNWjJDQnFsajBWaExySElSTWErMkEK2dxgKXKnVQ+1OrizuTC38BC/dCiqGk40
94K/cOfNTCtwMFnL6qe01Roo0qHMyN5FiJmE+HZ1QM2HzY+gMA4IKA==
-----END AGE ENCRYPTED FILE-----
- recipient: age1n6ju8fxvkeravluu6zr40k3jtyrqc3l7tt32xn5dcdqd2ncryu8skfkauy
enc: |
-----BEGIN AGE ENCRYPTED FILE-----
YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBxZWFaaU1DaWhreTNGOHJG
ZXUxZHlxR0U5UDBFN2NmVytYRndCc2dJSEMwClBvOFJDZlFmM2t2QUw1YnFXbTd2
ODIxem5XUk9wdlNzdmM0RXd1WFRVMUUKLS0tIHExSklHUytodEZkT3N3ekxPTHZU
Y2wwWUFrZ1RCLzI1UHk1WmN1eEhGWTQKA6BnM5YZafy4jvksPh0lIQkM9GnWvNih
CnCD3otGosPqceyGNlqHte9CQ8NJZ2EyuBp2zaRIN3IaSiLE2n0UXw==
-----END AGE ENCRYPTED FILE-----
lastmodified: "2025-09-09T13:41:32Z"
mac: ENC[AES256_GCM,data:NGogHAfXCs1QFaroOP3Q8KCwX+s8xibXFe9cn+E5lgDnQRQ9a9m5b/HzLrWfWn4ghFa/3QlpKwxdPdpEvtRdO9sCen2JFP2Y2GvlifgXIQJC35WlKRGc9bGAu6H0uVpCFzUs82kf5V7pbrdRH8e2HCzqVJLqG3IwIZjN9nht8R0=,iv:HM4hcxOmhljDA/XNgjWG6JB13h6lG9eKJzq3IJvkgUc=,tag:rcvmvKfE93GVII6CDO+s0Q==,type:str]
unencrypted_suffix: _unencrypted
version: 3.10.2
Reference in a new issue View git blame Copy permalink